https://intellixbom.com/tags/vulnerability-management/Recent content in Vulnerability-Management on IntelliXBOMHugoen-usMon, 26 Jan 2026 00:00:00 +0530https://intellixbom.com/blog/end-of-life-blind-spot-open-source-supply-chain/Mon, 26 Jan 2026 00:00:00 +0530https://intellixbom.com/blog/end-of-life-blind-spot-open-source-supply-chain/<blockquote> <p><em>By the time you discover a dependency is abandoned, it&rsquo;s usually already a liability. Here&rsquo;s why EOL detection can&rsquo;t be a metadata lookup and what to do instead.</em></p> </blockquote> <hr> <p>Your CI/CD pipeline is scanning for vulnerabilities. Your SCA tool is checking licenses. Your SBOM is up to date. But there&rsquo;s a question none of those tools are consistently answering:</p> <blockquote> <p><em>Is this open-source package still being maintained and if not, when did it stop?</em></p>https://intellixbom.com/blog/sbom-intelligence-not-just-an-inventory/Thu, 01 Jan 2026 00:00:00 +0530https://intellixbom.com/blog/sbom-intelligence-not-just-an-inventory/<blockquote> <p><strong>Software Supply Chain Security</strong></p> </blockquote> <hr> <p>Most conversations about software supply chain security start and end with one question: <strong>do you have an SBOM?</strong></p> <p>That is the wrong question.</p> <p>An SBOM Software Bill of Materials is, at its core, a structured list of components, libraries, and dependencies that make up a software product. For years, the industry treated possession of this list as a security milestone. Regulatory frameworks reinforce this narrative: produce an SBOM, share it with your customer, and check the compliance box.</p>